Configure a PrivateLink endpoint service in us-east-1 to use the existing NLB in eu-west-2 and grant specific AWS accounts access to the SaaS service.

Create an NLB in us-east-1, establish an IP target group using the eu-west-2 instances' IP addresses, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.

Deploy an ALB in front of the eu-west-2 EC2 instances, create an NLB in us-east-1, associate the us-east-1 NLB with an ALB target group using the eu-west-2 ALB, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.

Utilize AWS RAM to share the eu-west-2 EC2 instances, create an NLB and an instance target group in us-east-1 including the shared instances, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.